

United States Patent and Trademark Office 



UNITED STATES DEPARTMENT OF COMMERCE 
United States Patent and Trademark Office 
Address: COMMISSIONER FOR PATENTS 
P.O. Box 1450 

Alexandria, Virginia 22313-1450 
www.uspto.gov 



APPLICATION NO. 



FILING DATE 



FIRST NAMED INVENTOR 



ATTORNEY DOCKET NO. 



CONFIRMATION NO. 



09/890.180 



01/24/2002 



Alexander Medvinsky 



08/24/2005 



20350 7590 

TOWNSEND and TOWNSEND and crew, LLP 

TWO embarcadero center 

EIGHTH FLOOR 

SAN FRANCISCO, CA 94111-3834 



018926-003900US 



7559 



EXAMINER 



TO, BAOTRAN N 



ART UNIT 



PAPER NUMBER 



2135 

DATE MAILED: 08/24/2005 



Please find below and/or attached an Office communication concerning this application or proceeding. 



PTO-90C (Rev. 10/03) 



1 


Application No. 

09/890,180 


Applicant(s) 
MEDVINSKYETAL 


Examiner 
Bao Iran N. To 


Art Unit 

2135 





- The MAILING DATE of this communication appears on the cover sheet with the correspondence address ~ 
Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

• Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
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2a)n This action is FINAL. 2b)^ This action is non-final. 
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DETAILED ACTION 

1 . This Office action responds to the Preliminary Amendment filed on 1 0/1 5/2004. 
Applicant amended Claims 1-10 and added new Claims 1 1-19 in this amendment. 

Claims 1-19 are presented for examination. 

Specification 

2. The abstract of the disclosure is objected to because an abstract is required on a 
separate sheet by itself. Correction is required. See MPEP § 608.01(b). 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

3. Claims 1-4, 6-9 and 11-19 are rejected under 35 U.S.C. 102(b) as being 
anticipated by Barkan (EP 0738085 A2) herein referred to as Barkan. 

Regarding on Claims 1 and 6, Barkan discloses a method for establishing a 
secure communication channel in an IP telephony network between a first and a second 
user, wherein the first user and the second user are coupled to first and second 
telephony adapters, which in turn, are coupled to first and second gateway controllers, 
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respectively, wherein the gateway controllers control user access to the IP telephony 
network, and wherein the telephony adapters encrypt and decrypt user information 
exchanged over the IP telephony network (Fig. 1), the method comprising: 

receiving a request at the first gateway controller (key distribution center 1 1) to 
establish a secure communication channel (secure communication link) between the 
first user (facility 1) and the second user (facility 3) (Fig. 1, col. 6, lines 38-40); 

generating a secret key (encryption key) at the first gateway controller (col. 3, 
lines 50-53); 

distributing the secret key to the first and second telephony adapters (key 
management device) over previously established secure connections (col. 3, lines 17- 
25); and 

establishing the secure communication channel between the first user and the 
second user by encrypting and decrypting information using the secret key (col. 3, lines 
17-20). 

Regarding on Claim 2, Barkan discloses the limitations as discussed in Claim 1 
above. Barkan further discloses wherein the step of generating comprises a step of 
generating a random number at the first gateway controller to be used as the secret key 
(col. 14, line 59 and col. 15, lines 1-5). 

Regarding on Claim 3, Barkan discloses the limitations as discussed in Claim 1 
above. Barkan further discloses wherein the step of generating comprises a step of 



Application/Control Number: 09/890,180 Page 4 

Art Unit: 2135 

deriving the secret key at the first gateway controller (col. 15, lines 5-10), wherein the 
secret key is derived from a signaling key shared between the first telephony adapter 
and the first gateway controller (col. 15, lines 15-20). 

Regarding on Claim 4, Barkan discloses the limitations as discussed in Claim 1 
above. Barkan further discloses wherein the step of distributing comprises steps of: 

transmitting the secret key from the first gateway controller to the second 
gateway controller (col. 7, lines 45-55); 

transmitting the secret key from the second gateway controller to the second 
telephony adapter (col. 7, lines 45-50), 

transmitting the secret key from the first gateway controller to the first telephony 
adapter (col. 6, lines 35-40). 

Regarding on Claim 7, Barkan further discloses a gateway controller for 
establishing a secure communication channel in an IP telephony network, the gateway 
controller coupled between a telephony adapter and a telephony network backbone 
(Fig. 1), the gateway controller (key distribution center) comprising: 

a key creation module (key generating machine) having logic to create a secret 
key (encryption key) (col. 8, lines 30-35 and Abstract, lines 1-5); 

a key storage module (key management controller) coupled to the key creation 
module and having logic to store the secret key (col. 8, lines 15-20); and 
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a message processor coupled to the key creation module and the key storage 
module (col. 8, lines 15-20), and having logic to process messages exchanged between 
the telephony adapter and the telephony network backbone (Fig. 1 , element 111) (col. 
7, lines 51-54 and col. 14, lines 15-30), wherein the message processor further 
comprises: 

logic to receive a request to establish a secure communication channel between 
a first user and a second users the first user couple to the telephony adapter, the 
second user coupled to a remote telephony adapter (Fig. 1, col. 6, lines 38-40); 

logic to distributed the secret key to the telephony adapters over previously 
established secure connections (col. 3, lines 17-25), 

whereby the secure communication channel between the first user and the 
second user may be established by encrypting and decrypting information using the 
secret key (col. 3, lines 17-20). 

Regarding on Claim 8, Barkan discloses the limitations as discussed in Claim 7 
above. Barkan further discloses wherein the key creation module has logic to generate 
a random number as the secret key (col. 14, line 59 and col. 15, lines 1-5). 

Regarding on Claim 9, Barkan discloses the limitations as discussed in Claim 7 
above. Barkan further discloses wherein the key creation module has logic to derive the 
secret key from a signaling key shared with the telephony adapter (col. 8, lines 15-40). 
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Regarding on Claim 11, Barkan discloses a system for providing encrypted 
communications in an IP telephony network, said system comprising: 

a first cable telephony adapter (facility 1 key management device) (col. 5, lines 
53-55); 

a first gateway controller (key distribution center 11) coupled with said first cable 
telephony adapter (col. 6, lines 25-30); 

a second cable telephony adapter (facility 3 key management device) (col. 5, 
lines 52-55); 

a second gateway controller (key distribution center 12) coupled with said second 
cable telephony adapter (col. 7, lines 45-50); 

a network coupled with both said first gateway controller and said second 
gateway controller so as to facilitate communications between said first cable telephony 
adapter and said second cable telephony adapter wherein said communications are 
routed via said first gateway controller and said second gateway controller (Fig. 1 , col. 
5, line 52 through col. 12, line 18), wherein said first gateway controller comprises: 

a first key creation module configured to generate a secret key for distribution to 
both said first cable telephony adapter and said second cable telephony adapter for use 
in encrypted communications between said first cable telephony adapter and said 
second cable telephony adapter (col. 8, lines 15-20). 

Regarding on Claim 12, Barkan discloses the limitations as discussed in Claim 
1 1 above wherein said second gateway controller comprises: 
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a second key creation module configured to generate a secret key for distribution 
to both said first cable telephony adapter and said second cable telephony adapter for 
use in encrypted communications between said first cable telephony adapter and said 
second cable telephony adapter (col. 8, lines 30-35 and Abstract, lines 1-5). 

Regarding on Claim 13, Barkan discloses the limitations as discussed in Claim 
1 1 above wherein said first gateway controller further comprises: 

a message processor configured to receive an encrypted message from said first 
cable telephony adapter intended for decryption by said second cable telephony 
adapter and further configured to forward said encrypted message to said second 
gateway controller without decrypting said encrypted message (col. 7, lines 51-54 and 
col. 14, lines 15-30). 

Regarding on Claim 14, Barkan discloses the limitations as discussed in Claim 7 
above. Barkan further discloses wherein said key creation module is configured to 
intermittently generate a second secret key and to distribute said second secret key to 
said first cable telephony adapter and said second cable telephony adapter so as to 
replace said previously generated secret key (col. 7, lines 45-59 and col. 8, lines 1-40). 

Regarding on Claim 15, Barkan discloses a method of establishing secure 
communications between a first cable telephony adapter and a second cable telephony 
adapter in a system in which secure communications do not previously exist between 



Application/Control Number: 09/890,180 Page 8 

Art Unit: 2135 

said first cable telephony adapter and said second cable telephony adapter, wherein 
said first cable telephony adapter is coupled with a first gateway controller, said second 
cable telephony adapter is coupled with a second gateway controller, and a network is 
coupled with said first gateway controller and said second gateway controller (Fig. 1), 
said method comprising: 

receiving at said first gateway controller (key distribution center 1 1) a request 
from said first cable telephony adapter to establish communications between said first 
cable telephony adapter (facility 1 key management device) and said second cable 
telephony adapter (facility 3 key management device) (Fig. 1, col. 6, lines 38-40); 

generating a secret key (encryption key) at said first gateway controller (key 
distribution center 11) (col. 16, lines 15-40); 

distributing said secret key to said second gateway controller via a secure 
communication (secure communication link) (col. 7, lines 45-55); 

distributing said secret key from said second gateway controller (key distribution 
center 12) to said second cable telephony adapter (col. 7, lines 45-50); 

distributing said secret key from said first gateway controller to said first 
cable telephony adapter (col. 6, lines 35-40). 

Regarding on Claim 16, Barkan discloses the limitations as discussed in Claim 
15 above. Barkan further discloses comprising: 

encrypting a message at said first cable telephony adapter with said secret key 
(col. 6, lines 30-35); 
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sending said encrypted message to said first gateway controller (col. 9, lines 45- 

50); 

receiving said encrypted message at said first gateway controller (col. 6, lines 25- 

40); 

forwarding said encrypted message from said first gateway controller to said 
second gateway controller without decrypting said encrypted message (col. 10, lines 45- 
55). 

Regarding on Claim 17, Barkan discloses the limitations as discussed in Claim 
15 above. Barkan further discloses comprising: 

receiving said encrypted message at said second gateway controller (col. 10, 
lines 45-50); 

forwarding said encrypted message from said second gateway controller to 
said second cable telephony adapter without decrypting said message (col. 10, lines 35- 
55); 

decrypting said encrypted message at said second cable telephony adapter (col. 
15, lines 17-20). 

Regarding on Claim 18, Barkan discloses the limitations as discussed in Claim 
15 above. Barkan further discloses comprising; 

encrypting a message at said first cable telephony adapter with said secret key 
(col. 6, lines 30-35); 
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sending said encrypted message to said first gateway controller (col. 9, lines 45- 

50); 

receiving said encrypted message at said first gateway controller (col. 6, lines 25- 

40); 

routing said encrypted message from said first gateway controller to said 
second cable telephony adapter (col. 12, lines 5-15). 

Regarding on Claim 19, Barkan discloses the limitations as discussed in Claim 
15 above. Barkan further discloses comprising: 

receiving said encrypted message at said second cable telephony adapter (col. 
15, lines 15-17); 

decrypting said encrypted message at said second cable telephony adapter 
with said secret key (col. 15, lines 17-20). 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not Identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

4. Claims 5 and 10 are rejected under 35 U.S.C. 103(a) as being unpatentable over 

Barkan as applied to claims 1 and 7 above, and further in view of Ganesan (U.S. Patent 

5,535,276) herein referred to as Ganesan. 
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Regarding on Claim 5, Barkan discloses the limitations as discussed in Claim 1 
above. Barkan does not disclose receiving a request at the first gateway controller to 
provide the secret key to a law enforcement server; and providing the secret key to the 
law enforcement server. 

However, Ganesan discloses receiving a request at the first gateway controller to 
provide the secret key to a law enforcement server; and providing the secret key to the 
law enforcement server (Fig. 2, col. 17, lines 25-40). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to have incorporated Ganesan's invention with Barkan to 
provide the secret key to a law enforcement server with the motivation to allow the 
government access to messages. 

Regarding on Claim 10, Barkan discloses the limitations as discussed in Claim 7 
above. Barkan further discloses wherein the key storage module has logic to encrypt 
the secret key before storage (col. 10, lines 20-25), but Barkan explicitly does not 
disclose using a public/private key pair belonging to law enforcement. 

However, Ganesan discloses using a public/private key pair belonging to law 
enforcement (col. 9, lines 40-55). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to have modified Ganesan's invention with Barkan to use a 
public/private key pair belonging to law enforcement with the motivation to allow the law 
enforcement to check on communications between users. 
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Prior Art 

5. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

Rao et al. (U.S. Patent 6,757,823 B1) discloses a method of providing secure 
signaling connection and media connections for packet data network telephony calls. 

Kung et al. (U.S. Patent 6,889,321 B1) discloses communication information 
transmitted in the broadband communication system may be in a packet format and 
secured using encryption techniques. 

Ross, Jr. (U.S. Patent 5,812,671) discloses in this system parties have network 
access to a network secure communications gateway which stores the current 
encryption/decryption algorithms and keys for parties registered with network secure 
communications gateway. 

Matsumoto (U.S. Patent 6,215,877 B1) discloses a key management server is 
arranged at the same position as a terminal unit as viewed from a chat server. 

Everhart et al. (U.S. Patent 4,578,531) discloses encryption systems typically rely 
on the distribution of cipher keys between terminals for scrambling and unscrambling 
transmitted messages. 
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information Contact 

6. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Bao Tran N. To whose telephone number is 571-272- 
8156. The examiner can normally be reached on Monday-Friday from 8:00 to 4:30. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kim Y. Vu can be reached on 571-272-3859. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 

Bao Tran N. To 
Patent Examiner 
08/09/2005 
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